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DETAILED ACTION 

1 . This action is in response to the communication filed on April 4, 2006. Claims 1- 
15 were originally received for consideration. Per the received preliminary amendment, 
claims 1-15 are currently amended. 

2. Claims 1-15 are presently pending consideration. 

Information Disclosure Statement 

3. An initialed and dated copy of Applicant's IDS form 1449, received on 4/04/2006, 
is attached to this Office action. 

Claim Objections 

4. Claim 6 is objected to because of the following informalities: The word "carrier" is 
misspelled "earner." Appropriate correction is required. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed 
publication in this or a foreign country, before the invention thereof by the applicant for a patent. 
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Claims 1-15 are rejected under 35 U.S.C. 102(a) as being anticipated by 
Proudler et al. (EP 1280042 A2). 

Regarding claim 1, Proudler discloses: 

A method of identifying and/or verifying hardware and/or software of an appliance 
and of a data carrier which is provided to cooperate with the appliance, comprising the 
following steps: 

transmitting first authorization data of the hardware and/or software to a first unit 
(paragraph 0016-0019, 0029-0030, 0041, 0049-0051: sends a nonce to the trusted 
device, and receives a response used to verify the trusted device); 

comparing the first authorization data of the hardware and/or software that has 
been transmitted to the first unit with first verification data stored in the first unit 
(paragraph 001 6: identity and integrity metric are compared with expected values 
provided by a trusted party) 

authorizing the hardware and/or software once it has been ascertained that there 
is coincidence between the first authorization data provided by the hardware and/or 
software and the first verification data stored in the first unit (paragraph 0016: identity 
and integrity metric are compared with expected values provided by a trusted party, and 
if there is a match, the device is trusted) 

transmitting second authorization data of a data carrier to a second unit 
(paragraph 0022, 0029, 0044: verification between a smart card and a trusted device); 
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comparing the second authorization data in the second unit with second 
verification data stored in the second unit (paragraph 0022, 0029, 0044: verification 
between a smart card and a trusted device) 

authorizing the data carrier if there is coincidence between the second 
authorization data and the second verification data stored in the second unit (paragraph 
0022, 0029, 0044: verification between a smart card and a trusted device) 

wherein a direct data exchange is carried out between the first unit and the 
second unit (paragraph 0041 , 0052: communication between the trusted device and the 
platform after logical binding). 

Claim 2 is rejected as applied above in rejecting claim 1. Furthermore, Proudler 
discloses: 

A method as claimed in claim 1 , wherein the direct data exchange between the 
first unit and the second unit comprises a transmission of encrypted data and a 
comparison and/or decryption of data transmitted between the first unit and the second 
unit (paragraph 0019, paragraph 0051: cryptographic processes). 

Claim 3 is rejected as applied above in rejecting claim 1 . Furthermore, Proudler 
discloses: 

A method as claimed in claim 1, wherein the data exchange between the first unit 
and the second unit is carried out prior to an identification and/or verification of first 
authorization data of the hardware and/or software and of second authorization data of 
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the data carrier (paragraph 0041 , 0052: communication between the trusted device and 
the platform after logical binding). 

Claim 4 is rejected as applied above in rejecting claim 1 . Furthermore, Proudler 
discloses: 

A method as claimed in claim 1 , wherein a central arithmetic unit of the first unit 
and a central arithmetic unit of the second unit jointly access at least one ROM memory 
one RAM memory and/or one non-volatile memory (paragraph 0030-0034: 
measurement function has access to non-volatile memory and volatile memory to 
access the stored hash program, private key, and the acquired integrity metric in the 
form of a digest). 

Claim 5 is rejected as applied above in rejecting claim 1 . Furthermore, Proudler 
discloses: 

A method as claimed in claim 1 , wherein encryption of the first authorization data 
and of the second authorization data is carried out in the first unit and in the second unit 
(paragraph 0019, paragraph 0051 : cryptographic processes). 

Claim 6 is rejected as applied above in rejecting claim 1 . Furthermore, Proudler 
discloses: 
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A method as claimed in claim 1, wherein the second authorization data are 
obtained from a smartcard or a tag or a label that forms the data earner (paragraph 
0022, 0029, 0044: verification between a smart card and a trusted device). 

Regarding claim 7, Proudler discloses: 

A circuit for identifying and/or verifying hardware and/or software of an appliance 
and of a data carrier which is provided to cooperate with the appliance, comprising: 

a first unit for identifying and/or verifying the hardware and/or software of the 
appliance (paragraph 0016-0019, 0029-0030, 0041, 0049-0051: sends a nonce to the 
trusted device, and receives a response used to verify the trusted device), comprising a 
central arithmetic unit and at least one memory and an interface to the hardware and/or 
software that is to be identified and/or verified (paragraph 0030-0034: measurement 
function has access to non-volatile memory and volatile memory to access the stored 
hash program, private key, and the acquired integrity metric in the form of a digest), and 

a second unit comprising a central arithmetic unit and at least one memory and 
an interface to an external data carrier and also an interface to the hardware and/or 
software (paragraph 0022, 0029, 0044: verification between a smart card and a trusted 
device), 

wherein a communication interface is provided between the central arithmetic 
units of the first unit and the second unit (paragraph 0041 : communication between 
platforms). 
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Claim 8 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the memories of the first unit and of the 
second unit are formed by a ROM memory and a RAM memory and/or a non-volatile 
memory (paragraph 0030-0034: measurement function has access to non-volatile 
memory and volatile memory to access the stored hash program, private key, and the 
acquired integrity metric in the form of a digest). 

Claim 9 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the ROM memories and/or the RAM 
memories and/or the non-volatile memories of the first unit and of the second unit are in 
each case combined to form a common ROM memory and/or a common RAM memory 
and/or a common non-volatile memory (paragraph 0030-0034: measurement function 
has access to non-volatile memory and volatile memory to access the stored hash 
program, private key, and the acquired integrity metric in the form of a digest). 

Claim 10 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the first unit and the second unit in each 
case comprise an encryption device (paragraph 0019, paragraph 0051 : cryptographic 
processes). 
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Claim 11 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the central arithmetic unit of the first unit 
and the central arithmetic unit of the second unit are combined to form a common 
central arithmetic unit which common central arithmetic unit has the integrated 
communication interface, and wherein the common central arithmetic unit is connected 
by an interface to the hardware and/or software that is to be identified and/or verified 
(paragraph 0030-0034: measurement function has access to non-volatile memory and 
volatile memory to access the stored hash program, private key, and the acquired 
integrity metric in the form of a digest). 

Claim 12 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the interface to the external data carrier is 
designed for contactless communication with the external data carrier (paragraph 0022, 
0029, 0044: verification between a smart card and a trusted device). 

Claim 13 is rejected as applied above in rejecting claim 14. Furthermore, Proudler 
discloses: 

A circuit as claimed in claim 7, wherein the external data carrier is formed by a 
smartcard or a tag or a label (paragraphs 0032-0034: label or a smart card). 
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Claim 14 is rejected as applied above in rejecting claim 7. Furthermore, Proudler 
discloses: 

An appliance which comprises as hardware at least one central arithmetic unit 
which central arithmetic unit is designed to run software and to obtain data from an 
external data carrier cooperating with the appliance, wherein a circuit as claimed in 
claim 7 is coupled to the central arithmetic unit (paragraph 0022, 0029, 0044: 
verification between a smart card and a trusted device). 

Claim 15 is rejected as applied above in rejecting claim 14. Furthermore, Proudler 
discloses: 

An appliance as claimed in claim 14, wherein the central arithmetic unit of the 
appliance is coupled via an interface integrated in the central arithmetic unit of the 
appliance to the circuit integrated in the central arithmetic unit (paragraph 0030-0034). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to KAVEH ABRISHAMKAR whose telephone number is 
(571)272-3786. The examiner can normally be reached on Monday thru Friday 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 



Application/Control Number: 10/574,630 Page 10 

Art Unit: 2431 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Kaveh Abrishamkar/ 
Examiner, Art Unit 2431 

IK. A./ 
11/19/2008 

Examiner, Art Unit 2431 



